General Data Protection Regulation and Privacy

General Data Protection Regulation (GDPR)
CorbynJug.co.uk

Date: 15th May 2018 for review on 15th May 2019

CorbynJug.co.uk is an online store based in the UK selling pottery and collectables.
It is part of Stoke Art Pottery.

The site is based on the software WordPress and is password protected.
The site is managed and security maintained daily.

User Data on site

User data on site is only collected when items are purchased. And only used for the purpose of processing of the order and is used only by Stoke Art Pottery. No information is ever given or sold to Third Parties.

Data includes buyer’s name, billing address, delivery address, (if different from billing address) e-mail address and telephone number.

No payment data is collected by Stoke Art Pottery for online orders.
All payment data is processed by PayPal.

Payments by cheque.

If a buyer prefers to make payment by cheque. No information of the payee’s bankers is maintained.

User Data on Paypal

User transaction data is stored on PayPal.
The data includes user transaction information data, date and items purchased.
No payment data is accessible.
The PayPal account is password protected.

Email database

CorbynJug runs a permission based email list maintained by MailChimp.
Users have subscribed or given permission at time of purchasing items.
The user data includes user name and email address.
Users have full control to remove themselves from the list at any time.

User data held in a physical format at Stoke Art Pottery

A paper record of each transaction is maintained that is kept securely.
This is for the purpose of HMRC and other UK Regulatory Bodies.

Security documents by Third Parties

PayPal https://www.paypal.com/en/webapps/mpp/ua/privacy-full
Mailchimp https://mailchimp.com/legal/privacy/

Related Documents

REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) – http://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX:32016R0679